• PDF / 886,641 Bytes
• 15 Pages / 439.37 x 666.142 pts Page_size
• 50 Downloads / 155 Views

DOWNLOAD

REPORT

Abstract. Internet of Things (IoT) devices, expected to increase exponentially over the next several years, are easy targets for attackers. To make these devices more secure, the IETF’s draft of Manufacturer Usage Description (MUD) provides a means for the manufacturer of an IoT device to specify its intended purpose and communication patterns in terms of access control lists (ACLs), thereby defining the device’s normal behaviour. However, MUD may not be sufficient to comprehensively capture the normal behaviour specification, as it cannot incorporate variable operational settings that depend on the environment. Further, MUD only supports limited features. Our approach overcomes these limitations by allowing the administrator to define the normal behaviour by choosing combinations from a wider set of features that includes physical layer parameters, values of packet headers, and flow statistics. We developed and implemented a learning-based system that captures and demodulates wireless packets from IoT devices over a period of time, extracts the features specified in the normal behaviour specification, and uses a learning algorithm to create a normal model of each device. Our implementation also enforces these normal models by detecting violations and taking appropriate actions, in terms of ACLs on an Internet Gateway, against the misbehaving devices. Hence, our framework makes the specification tighter and clearer than what is possible with MUD alone, thereby making IoT systems more secure. Keywords: Internet of Things · Security · Manufacturer Usage Description (MUD) · Clustering

1

Introduction

Internet of Things (IoT), defined as an interconnection of things, people, data, and processes meant to achieve some specified business goals, is an important This material is based upon work supported in whole or in part with funding from the United States Department of Defense (DoD). Any opinions, findings, conclusions, or recommendations expressed in this material are those of the author(s) and do not necessarily reflect the views of any agency or entity of the United States Government. c Springer Nature Switzerland AG 2019  V. Issarny et al. (Eds.): ICIOT 2019, LNCS 11519, pp. 43–57, 2019. https://doi.org/10.1007/978-3-030-23357-0_4

44

S. Singh et al.

emerging technology that is being leveraged heavily by companies. The Business Insider predicts that companies will accelerate their investment in IoT solutions, with the aggregate investment forecasted to be $15 trillion between 2017 and 2025 [29]. Wireless sensor networks (WSN) are a key foundation of IoT solutions, helping things to communicate data to people and processes, and vice versa. WSNs comprise multiple sensors spread across an area, that measure certain physical parameters of the environment and communicate these measurements wirelessly to a gateway, which in turn forwards it to a control server. WSNs may also “close the loop”, i.e. the control server may process these measurements and command some actuators to perform actions to control some physical parameters.

Recommend Documents

Mud Volcanoes

171 36 52MB

Mud lumps

161 33 27KB

Mud Volcano Biogeochemistry

180 0 25MB

Waulsortian Mud Mounds

154 77 6MB

Multiuser Dungeon/Dimension/Domain (MUD)

173 29 35MB

Experimental Investigation of Creep Behavior of Bayer Red Mud in Guizhou Aluminum Factory's Red Mud Disposal Field

182 24 815KB

Rheological analysis of mud from Port of Hamburg, Germany

145 112 1MB

Formation of aluminum titanate-mullite composite from bauxite red mud

176 1 91KB

Geotechnical Characterization of Huma Bay Mud from Chilka Lake

163 114 57MB

Strength Characteristics of Red Mud and Silica Fume Based Concrete

184 80 20MB

Securing Internet Coordinate Systems

162 81 8MB

Securing RFID Systems

198 92 5MB